Certificate problem

guru1612 · June 3, 2021, 11:39am

hi ,
i have a prolem when connecting searchguard and elasticsearch.
the problem is
Search Guard Admin v7
Will connect to localhost:9300 … done
Connected as CN=localhost,OU=CE,O=CE,DC=Circular Edge,DC=com
ERR: CN=localhost,OU=CE,O=CE,DC=Circular Edge,DC=com is not an admin user
Seems you use a node certificate. This is not permitted, you have to use a client certificate and register it as admin_dn in elasticsearch.yml

how to solve this?
I attached .yml files with this
elasticsearch.yml (3.5 KB)
topic.

jkressin · June 3, 2021, 12:38pm

It seems that when you use sgadmin to make configuration changes you have specified a node certificate, not an admin certificate. For security reasons, you cannot use a node certificate with sgadmin.

In your elasticsearch.yml you have configured one node certificate:

searchguard.nodes_dn:
- CN=localhost,OU=CE,O=CE,DC=Circular Edge,DC=com

and two admin certificates:

searchguard.authcz.admin_dn:
- CN=spock.com,OU=CE,O=CE,DC=Circular Edge,DC=com
- CN=kirk.com,OU=CE,O=CE,DC=Circular Edge,DC=com

Please use either the spock or kirk certificate with sgadmin.

Topic		Replies	Views
I really don't know where the problem is. Search Guard	1	422	July 23, 2018
Seems you use a client certificate but this one is not registered as admin_dn Search Guard	5	1558	January 2, 2023
Certificate_problem Search Guard	2	441	July 19, 2018
searchguard.authcz.admin_dn setting in elasticsearch.yml - node or client cert? Search Guard	1	422	October 15, 2016
ERR: You try to connect with a ssl node certificate instead of an admin client certificate Search Guard	7	556	April 4, 2018

Certificate problem

Related topics